Alternatives and similar repositories for attest-sbom:

Users that are interested in attest-sbom are comparing it to the libraries listed below

• advanced-security / sbom-generator-action
  ☆15Updated last month
• slsa-framework / github-actions-demo
  Proof-of-concept SLSA provenance generator for GitHub Actions
  ☆99Updated 2 years ago
• philips-labs / slsa-provenance-action
  Github Action implementation of SLSA Provenance Generation
  ☆47Updated this week
• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆57Updated 4 months ago
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆178Updated 5 months ago
• reviewdog / action-tfsec
  Run tfsec with reviewdog on pull requests to enforce security best practices
  ☆73Updated this week
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• actions / attest
  Action for generating attestations for workflow artifacts
  ☆43Updated this week
• octo-sts / action
  ☆32Updated 4 months ago
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆127Updated this week
• machine-learning-apps / actions-app-token
  Impersonate a GitHub App Token inside Actions
  ☆61Updated 4 years ago
• open-policy-agent / setup-opa
  Sets up Open Policy Agent CLI in your GitHub Actions workflow.
  ☆48Updated 11 months ago
• github / actions-oidc-debugger
  An Action for printing OIDC claims in GitHub Actions.
  ☆82Updated 7 months ago
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated last week
• zgosalvez / github-actions-ensure-sha-pinned-actions
  A Github Action to ensure that actions are pinned to full length commit SHAs
  ☆39Updated this week
• sysdiglabs / terraform-provider-sysdig
  Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.
  ☆52Updated last week
• fugue / regula-action
  ☆16Updated 11 months ago
• tj-actions / auto-doc
  Github action that turns your reusable workflows and custom actions into easy to read markdown tables.
  ☆48Updated last week
• cloud-gov / caulking
  Prevent leaks with gitleaks, and use tests to validate
  ☆32Updated 2 months ago
• SvanBoxel / organization-workflows
  Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.
  ☆133Updated 10 months ago
• chainguard-dev / darkfiles
  Darkfiles finds orphaned files in container images and makes them to bad deeds
  ☆41Updated last year
• kmcquade / terraform-aws-policy-sentry
  Terraform module for Policy Sentry.
  ☆25Updated 4 years ago
• instrumenta / conftest-action
  A GitHub Action for using Conftest
  ☆33Updated 3 years ago
• controlplaneio / kubesec-action
  Runs Kubesec as GitHub action
  ☆18Updated 3 years ago
• 1Password / check-signed-commits-action
  GitHub Action to check PRs for signed commits
  ☆52Updated 7 months ago
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆96Updated 10 months ago
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆112Updated last week
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆151Updated this week
• terraform-linters / tflint-ruleset-opa
  Experimental: TFLint ruleset plugin for writing custom rules in Rego.
  ☆65Updated this week
• anderseknert / pre-commit-opa
  Pre-commit git hooks for Open Policy Agent (OPA) and Rego development
  ☆66Updated 3 years ago